0 Replies Latest reply on Nov 5, 2004 5:30 AM by time4tea

    Wedgetail integration with JBoss JAAS

    time4tea

      Hi,

      I'm using Wedgetail JCSI SSO software to perform active directory (SPNEGO) authentication.

      The protection of the web resources works fine, and in the web tier I can call request.getUserPrincipal(), and the correct calling principal is returned.

      I did note though, that the principal and HttpServletRequest classes passed to the JSP pages are wedgetail wrappers, and not JBoss/Tomcat standard classes...

      Principal Class: com.wedgetail.idm.sso.Krb5Principal
      Request Class: com.wedgetail.idm.sso.NegotiateRequestWrapper

      However, when calling an EJB, I would need to specify a security domain, and I'm not quite sure how to proceed. If i choose the default, then I get errors indicating "principal=null" on the create method for the EJB. I take this to mean that the principal has not been passed into any JAAS domain.

      If anybody could point me in the right direction, would be very much appreciated!

      Thanks!